Loading…
Subject: Vulnerability Management clear filter
arrow_back View All Dates
Thursday, June 25
 

1:15pm CEST

OWASP DefectDojo
Thursday June 25, 2026 1:15pm - 1:45pm CEST
Room -2.82 (Level 2)
Agenda for the OWASP DefectDojo project showcase:

I. Introduction to OWASP DefectDojo

A. What is DefectDojo?
1. Open-source vulnerability management tool
2. Designed to streamline security testing and vulnerability tracking

B. Why is it important?
1. Improves application security posture
2. Accelerates remediation efforts
3. Provides clearer understanding of overall security landscape

II. Key Features of DefectDojo

A. Aggregation of Security Findings
1. Supports various scanning tools (SAST, DAST, SCA, etc.)
2. Centralized repository for vulnerabilities

B. Collaboration Facilitation
1. Bridges development and security teams
2. Workflow management for remediation

C. Comprehensive Reporting
1. Risk assessment
2. Compliance reporting
3. Customizable dashboards

III. Benefits and Use Cases

A. Enhanced Vulnerability Management
1. Prioritization of critical vulnerabilities
2. Tracking of remediation progress

B. Improved Security Posture
1. Proactive identification of security flaws
2. Reduced attack surface

C. Real-world applications
1. Integrating into CI/CD pipelines
2. Managing bug bounty programs

IV. Live Demonstration (Optional, but Recommended)

A. Basic workflow: importing findings, creating engagements, tracking vulnerabilities
B. Example of a comprehensive report

V. Conclusion

A. Recap of DefectDojo's value proposition
B. Q&A session
C. Resources for further learning
Speakers
avatar for Matt Tesauro

Matt Tesauro

Distinguished Engineer, Founder, AppSec Guru, Defect Dojo
Matt Tesauro is a DevSecOps and AppSec guru with specialization in creating security programs, leveraging automation to maximize team velocity and training emerging and senior professionals. When not writing automation code in Go, Matt is pushing for DevSecOps everywhere via his involvement... Read More →
Thursday June 25, 2026 1:15pm - 1:45pm CEST
Room -2.82 (Level 2)
  Project Showcase (Lightning Talks)
 

Get help with the event

Contact event planner Event login
View support guides Find upcoming events
Create an event you'd love to attend!
Explore why organizers choose Sched Success stories
Event App Event scheduling Event registration Event ticketing Sched forms Call for papers Badges Conferences
© 2026. SCHED LLC - All rights reserved - Helping events since 2008
Event Planning Software Privacy Terms
Share Modal

Share this link via

Or copy link

Filter sessions
Apply filters to sessions.
Filtered by Date - 
Clear filter
Monday, June 22
Tuesday, June 23
Wednesday, June 24
Thursday, June 25
Friday, June 26
-2.66 (Level -2)
Expo Hall X1
Expo Hall X1, Booth SU4
Foyer D (Level -2)
Hall D (Level -2)
Hall G1 (Level -2)
Hall G2 (Level -2)
Hall K1 (Level -2)
Hall K2 (Level -2)
Level -2
Offsite Vendor Sponsored Event
Room -2.15 (Level -2)
Room -2.33 (Level -2)
Room -2.42 (Level -2)
Room -2.43 (Level -2)
Room -2.62 (Level 2)
Room -2.82 (Level 2)
Room -2.92 (Level -2)
Room -2.94 (Level -2)
Room: -2.14 (Level -2)
Room: -2.31 (Level -2)
Room: -2.32 (Level -2)
Room: -2.41 (Level -2)
Room: -2.77 (Level -2)
Room: -2.93 (Level -2)
Terrace G of Austria Center
  • 1-Day Training
  • 2-Day Training
  • 3-Day Training
  • Bonus Track
  • Book Signing
  • Deployment and Maintenance
  • Implementation
  • Keynote
  • Meals Provided by OWASP
  • Meeting
  • MobileAppSecCon
  • Panel Discussion
  • Planning and Design
  • PODS (Hands-on Activities)
  • Process and Culture
  • Project Demo Lab (Hands-on)
  • Project Showcase (Lightning Talks)
  • Project User Day
  • Registration
  • Sponsored Happy Hour
  • Testing
  • Audience
  • Advanced
  • All
  • AppSec Engineers
  • Beginner
  • Developers
  • Intermediate
  • Introductory and Overview
  • Private Meeting
  • Security Champions
  • Students and newcomers in AppSec
  • Subject
  • AI
  • CRA
  • DevSecOps
  • Gamification
  • Kubernetes
  • Mobile Security
  • Network Security
  • Pentesting
  • SSDLC
  • Standards
  • Threat Modeling
  • Vulnerability Management
  • WAF